ManageEngine ServiceDesk Plus < 13.0 Build 13011 RCE

A remote code execution vulnerability exists in ManageEngine ServiceDesk Plus prior to 13.0 Build 13011 due to a flaw in the Analytics Plus integration input field validation. Vulnerability requires an administrator role access. Note that Nessus has not tested for this issue but has instead relie...

ManageEngine SupportCenter Plus < 11.0 Build 11026 Multiple Vulnerabilities

The version of ManageEngine SupportCenter Plus prior to 11.0 Build 11026 is running on the remote web server. It is, therefore, affected by multiple vulnerabilities, including the following: - A remote code execution vulnerability due to a flaw in the Analytics Plus integration input field...

CVE-2022-40770

creationtimestamp| type| source ---|---|--- 2022-11-23 07:13:48+00:00| seen| https://t.me/cibsecurity/53397 2025-04-28 20:11:22+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13734...

CVE-2022-40770

Zoho ManageEngine ServiceDesk Plus versions 13010 and prior are vulnerable to authenticated command injection. This can be exploited by high-privileged users...

CVE-2022-40770

Zoho ManageEngine ServiceDesk Plus is affected by CVE-2022-40770: an authenticated command-injection vulnerability in versions 13010 and prior, exploitable by high-privilege users. Red Hat and multiple vulnerability feeds corroborate the issue. The root cause is tied to the Analytics Plus integra...